![\"\u9650\u5236\u65e0\u7528ecshop\u5546\u57ce\u7ba1\u7406\u5458\u767b\u9646\u6743\u9650\u63d2\u56fe\"](\"https:\/\/www.ldhost.cn\/helphmb\/uploads\/allimg\/141220\/161F2M01-0.png\" "\\"\u9650\u5236\u65e0\u7528ecshop\u5546\u57ce\u7ba1\u7406\u5458\u767b\u9646\u6743\u9650\u63d2\u56fe\\"")
<\/p>\n\u7531\u4e8e\u516c\u53f8\u8fd0\u8425\u7ba1\u7406\u5c97\u4f4d\u53d8\u52a8\uff0c\u5220\u9664\u8d26\u6237\u4f1a\u9020\u6210\u64cd\u4f5c\u65e5\u5fd7\u64cd\u4f5c\u4eba\u4e3a\u7a7a\u7684\u73b0\u8c61\uff0c\u4e3a\u4e86\u4fdd\u7559\u7ba1\u7406\u8d26\u53f7\u5b8c\u6574\uff0c\u53c8\u4e0d\u8981\u4ed6\u767b\u9646\u7ba1\u7406\uff0c\u867d\u7136\u53ef\u4ee5\u66f4\u6539\u540e\u53f0\u7ba1\u7406\u7684\u94fe\u63a5\uff0c\u4f46\u4e3a\u4e86\u66f4\u5b89\u5168\uff0c\u6240\u4ee5\u516c\u53f8\u8981\u6c42\u5b9e\u73b0\u7ba1\u7406\u5458\u72b6\u6001\u8bbe\u7f6e\uff0c\u53ef\u4ee5\u81ea\u7531\u53d8\u66f4\u7ba1\u7406\u5458\u7684\u767b\u5f55\u72b6\u6001\u3002\u4e00\u4e0b\u662f\u5220\u9664\u7ba1\u7406\u5458\u8d26\u53f7\u64cd\u4f5c\u65e5\u5fd7\u9020\u6210\u7684\u95ee\u9898\uff1a<\/p>\n
<\/p>\n
\u4e0b\u9762\u662f\u6dfb\u52a0\u6210\u529f\u540e\u7684\u5c55\u793a\u56fe\uff1a<\/p>\n
![\"\u9650\u5236\u65e0\u7528ecshop\u5546\u57ce\u7ba1\u7406\u5458\u767b\u9646\u6743\u9650\u63d2\u56fe1\"](\"https:\/\/www.ldhost.cn\/helphmb\/uploads\/allimg\/141220\/161F2Lb-1.png\" "\\"\u9650\u5236\u65e0\u7528ecshop\u5546\u57ce\u7ba1\u7406\u5458\u767b\u9646\u6743\u9650\u63d2\u56fe1\\"")
<\/p>\n
\u4e00\u3001\u6267\u884c\u6570\u636e\u5e93\u8bed\u53e5\uff0c\u6dfb\u52a0\u72b6\u6001\u5b57\u6bb5\uff1a\u5176\u4e2decs_\u4e3a\u6570\u636e\u5e93\u524d\u7f00<\/p>\n
\r\nALTER<\/span> TABLE<\/span> `ecs_<\/span>admin_user`<\/span> ADD<\/span> `status`<\/span> SMALLINT<\/span>( 3<\/span> ) UNSIGNED NOT<\/span> NULL<\/span> DEFAULT<\/span> '1'<\/span> COMMENT '\u8d26\u53f7\u72b6\u6001'<\/span>;<\/span><\/pre>\n \u4e8c\u3001\u7f16\u8f91\/admin\/privilege.php\u9a8c\u8bc1\u767b\u5f55\u4fe1\u606f\u4ee3\u7801\u6bb5\uff0c\u6dfb\u52a0\u8d26\u53f7\u72b6\u6001\u9a8c\u8bc1\uff0c\u5e76\u5728\u5176\u540e\u6dfb\u52a0AJAX\u4fee\u6539\u8d26\u53f7\u72b6\u6001\uff08\u67e5\u627e—-\u9a8c\u8bc1\u767b\u9646\u4fe1\u606f—-\u5927\u7ea6\u5728179\u884c\u4f4d\u7f6e\uff0c\u6b64\u65b9\u6cd5\u4e0a\u9762\u6dfb\u52a0\u4ee5\u4e0b\u4ee3\u7801\uff09<\/p>\n
\r\n\/*------------------------------------------------------ *\/<\/span>\r\n\/\/-- \u9a8c\u8bc1\u767b\u5f55\u4fe1\u606f<\/span>\r\n\/*------------------------------------------------------ *\/<\/span>\r\nelseif<\/span> ($_REQUEST<\/span>['act'<\/span>] == 'signin'<\/span>)\r\n{\r\n <\/span>if<\/span> (!empty<\/span>($_SESSION<\/span>['captcha_word'<\/span>]) && (intval($_CFG<\/span>['captcha'<\/span>]) & CAPTCHA_ADMIN))\r\n <\/span>{\r\n <\/span> <\/span>include_once<\/span>(ROOT_PATH . 'includes\/cls_captcha.php'<\/span>);\r\n\r\n <\/span> <\/span>\/* \u68c0\u67e5\u9a8c\u8bc1\u7801\u662f\u5426\u6b63\u786e *\/<\/span>\r\n <\/span> <\/span>$validator<\/span> = new<\/span> captcha();\r\n <\/span> <\/span>if<\/span> (!empty<\/span>($_POST<\/span>['captcha'<\/span>]) && !$validator<\/span>->check_word($_POST<\/span>['captcha'<\/span>]))\r\n <\/span> <\/span>{\r\n <\/span> <\/span> <\/span>sys_msg($_LANG<\/span>['captcha_error'<\/span>], 1<\/span>);\r\n <\/span> <\/span>}\r\n <\/span>} \/\/www.ldhost.cn<\/span>\r\n\r\n <\/span>$_POST<\/span>['username'<\/span>] = isset<\/span>($_POST<\/span>['username'<\/span>]) ? trim($_POST<\/span>['username'<\/span>]) : ''<\/span>;\r\n <\/span>$_POST<\/span>['password'<\/span>] = isset<\/span>($_POST<\/span>['password'<\/span>]) ? trim($_POST<\/span>['password'<\/span>]) : ''<\/span>;\r\n\r\n <\/span>$sql<\/span>=\"SELECT `ec_salt` FROM \"<\/span>. $ecs<\/span>->table('admin_user'<\/span>) .\"WHERE user_name = '\"<\/span> . $_POST<\/span>['username'<\/span>].\"'\"<\/span>;\r\n <\/span>$ec_salt<\/span> =$db<\/span>->getOne($sql<\/span>);\r\n <\/span>if<\/span>(!empty<\/span>($ec_salt<\/span>))\r\n <\/span>{\r\n <\/span> <\/span> \/* \u68c0\u67e5\u5bc6\u7801\u662f\u5426\u6b63\u786e *\/<\/span>\r\n <\/span> <\/span> $sql<\/span> = \"SELECT user_id, user_name, password, last_login, action_list, last_login,suppliers_id,ec_salt,status\"<\/span>.\r\n <\/span> <\/span> <\/span>\" FROM \"<\/span> . $ecs<\/span>->table('admin_user'<\/span>) .\r\n <\/span> <\/span> <\/span>\" WHERE user_name = '\"<\/span> . $_POST<\/span>['username'<\/span>]. \"' AND password = '\"<\/span> . md5(md5($_POST<\/span>['password'<\/span>]).$ec_salt<\/span>) . \"'\"<\/span>;\r\n <\/span>}\r\n <\/span>else<\/span>\r\n <\/span>{\r\n <\/span> <\/span> \/* \u68c0\u67e5\u5bc6\u7801\u662f\u5426\u6b63\u786e *\/<\/span>\r\n <\/span> <\/span> $sql<\/span> = \"SELECT user_id, user_name, password, last_login, action_list, last_login,suppliers_id,ec_salt,status\"<\/span>.\r\n <\/span> <\/span> <\/span>\" FROM \"<\/span> . $ecs<\/span>->table('admin_user'<\/span>) .\r\n <\/span> <\/span> <\/span>\" WHERE user_name = '\"<\/span> . $_POST<\/span>['username'<\/span>]. \"' AND password = '\"<\/span> . md5($_POST<\/span>['password'<\/span>]) . \"'\"<\/span>;\r\n <\/span>}\r\n <\/span>$row<\/span> = $db<\/span>->getRow($sql<\/span>);\r\n <\/span>if<\/span> ($row<\/span>)\r\n <\/span>{\r\n <\/span> <\/span>\/\/ \u68c0\u67e5\u662f\u5426\u4e3a\u4f9b\u8d27\u5546\u7684\u7ba1\u7406\u5458 \u6240\u5c5e\u4f9b\u8d27\u5546\u662f\u5426\u6709\u6548<\/span>\r\n <\/span> <\/span>if<\/span> (!empty<\/span>($row<\/span>['suppliers_id'<\/span>]))\r\n <\/span> <\/span>{\r\n <\/span> <\/span> <\/span>$supplier_is_check<\/span> = suppliers_list_info(' is_check = 1 AND suppliers_id = '<\/span> . $row<\/span>['suppliers_id'<\/span>]);\r\n <\/span> <\/span> <\/span>if<\/span> (empty<\/span>($supplier_is_check<\/span>))\r\n <\/span> <\/span> <\/span>{\r\n <\/span> <\/span> <\/span> <\/span>sys_msg($_LANG<\/span>['login_disable'<\/span>], 1<\/span>);\r\n <\/span> <\/span> <\/span>}\r\n <\/span> <\/span>}\r\n\r\n <\/span> <\/span>\/\/ \u68c0\u67e5\u8d26\u53f7\u72b6\u6001<\/span>\r\n <\/span> <\/span>if<\/span> ($row<\/span>['status'<\/span>] == 0<\/span>)\r\n <\/span> <\/span>{\r\n <\/span> <\/span> <\/span>sys_msg($_LANG<\/span>['login_disable'<\/span>], 1<\/span>);\r\n <\/span> <\/span> <\/span>exit<\/span>();\r\n <\/span> <\/span>}\r\n\r\n <\/span> <\/span>\/\/ \u767b\u5f55\u6210\u529f<\/span>\r\n <\/span> <\/span>set_admin_session($row<\/span>['user_id'<\/span>], $row<\/span>['user_name'<\/span>], $row<\/span>['action_list'<\/span>], $row<\/span>['last_login'<\/span>]);\r\n <\/span> <\/span>$_SESSION<\/span>['suppliers_id'<\/span>] = $row<\/span>['suppliers_id'<\/span>];\r\n <\/span> <\/span>if<\/span>(empty<\/span>($row<\/span>['ec_salt'<\/span>]))\r\n <\/span> <\/span>{\r\n <\/span> <\/span> <\/span>$ec_salt<\/span>=rand(1<\/span>,9999<\/span>);\r\n